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IN THE CLAIMS 

The listing of Claims will replace all prior versions, and listings, of claims in this application: 

1. (Currently Amended) A method of transferring a data file having a file name from 
a first computer operated by a first user to a second computer operated by a second user, wherein 
the method is performed under control of a third computer, comprising th e st e ps of : 

i) in permitting the first user to select, on t he first computer, the first user selecting a data 
file which is to be transferred: for transfer and 

ii) establishing a communications link with between the first computer and t he third 
computer; 

iii) verifying an identity of the first user to the third computer by way of verification 
communications between the first and third computers, wherein the identity of the first user is 
verified by way of: 

a) generating, in the third computer, a pseudo-random security string; 

b) transmitting the pseudo-random security string from the third computer to the first 
computer; 

a) -a c) causing the first computer to display the p seudo-random security string being 
display e d to the first user; 

d) permitting the first computer to receive from the first user a volatile identification 
code, wherein the first user volatile identification code is created by the user applying a first user 
mask code to the pseudo-random security string; 

b) c) th e first us e r applying a first us e r mask cod e to th e ps e udo - random s e curity string in 
th e first comput e r so as to g e n e rat e a first us e r volatil e id e ntification cod e , and 

e) c) the first user transmitting the first user volatile identification code from the first 
computer t o the third computer; and A 

f) causing the third computer comparing to compare the first user volatile identification 
code with a first check volatile identification code obtained by applying the first user mask code 
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to the pseudo-random security string in the third computer, wherein the identity of verification 
taking pla ee the first user is verified when the first user volatile identification code and the first 
check volatile identification codes are found to match each other; 

hi) iv) causing in the first computer^ to wrapping or encrypting the data file within an 
executable file adapted to unwrap or decrypt the data file only upon activation by a unique key 
code ;, and then 

v) transmitting the executable file containing the wrapped or encrypted data file directly 
from the first computer to the second computer together with first user identification information 
and the file name of the data file; 

ivi) transmitting the file name of the data file from the first computer to the third 
computer, together with first user identification information and the unique key code; 

vri) in th e s e cond comput e r, upon r e c e ipt of th e e x e cutabl e fil e containing th e wrapp e d or 
encrypted data file and upon attempted access thereto by the second user, establishing a 
communications link between the second computer and w ith the third compute r, wherein the 
communication link is established after receipt by the second computer of the executable file 
containing the wrapped or encrypted data file and when the second user attempts to access the 
executable file ; 

viii) verifying an identity of the second user to the third computer by way of verification 
communications between the second and third computers; 

viix) upon succ e ssful v e rification of th e id e ntity of th e s e cond us e r, transmitting the file 
name of the data file from the second computer to the third computer with a request for the 
unique key code after successful verification of the identity of the second user ; and 

viii) x) transmitting the unique key code from the third computer to the second computer 
so as to cause the executable file to unwrap or decrypt the data file and to allow access thereto in 
the second computer by the second user. 

2. (Canceled) 
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3. (Currently Amended) A method according to claim 1, wherein the identity of the 
second user is verified in step viri) above by way of the second user applying a second user mask 
code to a first pseudo-random security string in the second computer so as to generate a second 
user volatile identification code, the second user transmitting the second user volatile 
identification code to the third computer and the third computer comparing the second user 
volatile identification code with a second check volatile identification code obtained by applying 
the second user mask code to a second pseudo-random string in the third computer, identity 
verification taking place when the second user volatile identification code and the second check 
volatile identification codes are found to match each other. 

4. (Previously Presented) A method according to claim 3, wherein the first pseudo¬ 
random security string and the second pseudo-random security string are the same. 

5. (Original) A method according to claim 4, wherein the pseudo-random string is 
generated by the third computer and transmitted firstly to the first computer and then from the 
first computer to the second computer. 

6. (Original) A method according to claim 4, wherein the pseudo-random string is 
generated by the third computer and transmitted firstly to the first computer and then from the 
third computer to the second computer. 

7. (Previously Presented) A method according to claim 3, wherein the first pseudo¬ 
random security string and the second pseudo-random security string are different. 

8. (Original) A method according to claim 1, wherein the identity of the first or 
second user is verified, respectively, through said first or second computer by way of a secure 
user code entry interface for entry of a user mask code by way of the computer and a display; 
wherein: i) said secure user code entry interface contains at least one active display for entry of 
at least one digit of said user mask code by the user; wherein said active display illuminates or 
highlights at least one display digit within said active display and said user enters said at least 
one digit of said user mask code by a response through an input device at a response time when 
said at least one display digit which corresponds with said at least one digit of said user mask 
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code is illuminated or highlighted in said active display; and ii) a random run on time is added to 
said response time to extend said at least one active display. 

9. (Currently Amended) A method according to claim 12, wherein: i) the pseudo¬ 
random string comprises a first linear array of characters, each character having a given 
numerical position in the first array (first, second, third etc.); ii) the mask code comprises a 
second linear array of numbers, each number having a given numerical position in the second 
array (first, second, third etc.); and iii) the volatile identification code is generated by applying 
the mask code to the pseudo-random string so as sequentially to select numerical positions in the 
first array on the basis of the numbers in the second array, taken in positional order, and to return 
the characters thereby selected from the first array in sequence so as to form a third linear array, 
this third linear array forming the volatile identification code. 

10. (Original) A method according to claim 1, wherein the third computer maintains a 
record of transactions between the first, second and third computers so as to permit an audit trail 
to be established. 

11. (Currently Amended) A method according to claim 13, wherein the first and/or 
second user volatile identification codes are stored as digital signatures in the third computer in 
combination with the associated pseudo-random security string. 

12. (Currently Amended) A method of transferring a data file to a first computer from 
a second computer , the method comprising the steps of : 

i) establishing a communications link between the first and second computers; 

ii) permitting a first user to selecting, by way of th e on the first computer, a data file for 
transfer from the second computer; 

iii) in the second computer, causing the second computer to wrapping or encrypting the 
data file within an executable file adapted to unwrap or decrypt the data file only upon activation 
by a unique key code; , and th e n 

iv) transmitting the executable file containing the wrapped or encrypted data file from the 
second to the first computer; 
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iv) verifying an identity of a user of the first computer to the second computer by way of 
verification communications between the first and second computers, wherein the identity of the 
first user is verified by way of: 

a) generating a pseudo-random code on the second computer and transmitting it to the 
first computer: 

a) b) displaying a the p seudo-random code to the first user; 

b) c) permitting the first user to apply a first user mask code to a pseudo-random 
security string in the first computer so as to generate a first user volatile identification code; 

e) d) permitting the first user computer t o transmit the first user volatile identification 
code to the second computer, and; 

d) c) comparing, in the second computer, the first user volatile identification code 
with a first check volatile identification code obtained by applying the first user mask code to 
the pseudo-random string in the second computer, wherein identity verification takes place 
when the first user volatile identification code and the first check volatile identification codes 
are found to match each other; and 

vi) upon succ e ssful v e rification of th e us e r of th e first comput e r, transmitting the unique 
key code to the first compute r, once the user has been successfully verified on the first computer . 

13. (Canceled) 

14. (Original) A method according to claim 12, wherein the identity of the first user is 
verified through said first computer by way of a secure user code entry interface for entry of a 
user mask code by way of the computer and a display; wherein: i) said secure user code entry 
interface contains at least one active display for entry of at least one digit of said user mask code 
by the user; wherein said active display illuminates or highlights at least one display digit within 
said active display and said user enters said at least one digit of said user mask code by a 
response through an input device at a response time when said at least one display digit which 
corresponds with said at least one digit of said user mask code is illuminated or highlighted in 


- 6 - 



Response to Office Action dated February 8, 2007 
Examiner: DOAN, Trang T. 


Serial No.: 09/994,919 
Atty. Docket No.: 046354.010500 


said active display; and ii) a random run on time is added to said response time to extend said at 
least one active display. 

15. (Currently Amended) A method according to claim 12 13 or any claim d e p e nding 
th e r e from , wherein: i) the pseudo-random string comprises a first linear array of characters, each 
character having a given numerical position in the first array (first, second, third etc.); ii) the 
mask code comprises a second linear array of numbers, each number having a given numerical 
position in the second array (first, second, third etc.); and iii) the volatile identification code is 
generated by applying the mask code to the pseudo-random string so as sequentially to select 
numerical positions in the first array on the basis of the numbers in the second array, taken in 
positional order, and to return the characters thereby selected from the first array in sequence so 
as to form a third linear array, this third linear array forming the volatile identification code. 

16. (Currently Amended) A method of transferring a data file to a first computer 
having a first telecommunications address from a second computer having a second 
telecommunications address, comprising the steps of : i) transmitting a request for the data file 
from the first computer to the second computer, the request including data identifying the data 
file and the first telecommunications address; ii) in -causing the second computer- to wrapping or 
encrypting the data file within an executable file adapted to unwrap or decrypt the data file only 
upon activation by a unique key code; iii) assigning a unique identification string to the 
executable file in the second computer, the unique identification string being further associated 
in the second computer with the first telecommunications address; iv) transmitting the executable 
file (containing the data file) and the unique identification string from the second computer to the 
first computer; v) causing a message to be displayed by the first computer showing the unique 
identification string and requesting a user to call a predetermined telephone number from a 
telephone operated by the user; vi) receiving a telephone call from the telephone operated by the 
user, determining its telephone number and receiving the unique identification string from the 
user; vii) in the second computer, generating a pseudo-random string, in the second computer; 
viii) associating the pseudo-random string with the unique identification string and the telephone 
number of the telephone operated by the user;r-and -ix) transmitting the pseudo-random string to 
the telephone operated by the user; viii) x) displaying the pseudo-random string to the user and 
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permitting the user to apply a mask code, known to the user and to the second computer, to the 
pseudo-random identification string so as to generate a volatile identification code in accordance 
with predetermined rules; ixi) transmitting the volatile identification code to the second 
computer, either from the telephone operated by the user in which case the volatile identification 
code is transmitted together with the telephone number of the telephone operated by the user, or 
from the first computer in which case the volatile identification code is transmitted together with 
the first telecommunications address, the telephone number or the first telecommunications 
address respectively serving to identify the first computer, the user and the executable file; xii) 
verifying the user in the second computer^ by checking that the volatile identification code 
matches a volatile identification code generated therein by applying the mask code to the pseudo¬ 
random string; and, if so; xiii) transmitting the key code to the first computer so as to enable the 
executable file to unwrap or decrypt the data file and to install this on the first computer , once 
the user is successfully verified . 

17. (Currently Amended) A secure data transfer system comprising a first computer 
operated by a first user, a second computer operated by a second user and a third computer, the 
system being adapted to transfer a data file having a file name from the first computer to the 
second computer under control of the third computer , in which comprising : 

i) the first computer is adapted to establish a communications li nk with the third 
computer once u pon selection by t he first user ef has selected a data file for transfer; 

ii) the first and third computers are adapted to verify an identity of the first user to the 
third computer by way of verification communications between the first computer and the third 
computer, wherein the identity of the first user is verified by way of: 

a) generating, in the third computer a pseudo-random security string; 

b) transmitting the pseudo-random security string from the third computer to the first 

computer; 

a) c) causing the first computer to displaying-a the pseudo-random security string to 
the first user; 
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b) permitting the first user to apply a first user mask code to the pseudo random 
security string in the first computer so as to generate a first user volatile identification code; 

d) permitting the first computer to receive from the first user a volatile identification 
code, wherein the first user volatile identification code is created by the user applying a first 
user mask code to the pseudo-random security string; 

c) transmitting the first user volatile identification code from the first computer to the 
third computer: and, 

c) p e rmitting th e first us e r to transmit th e first us e r volatil e id e ntification cod e to th e 
third computer and the third computer comparing the first user volatile identification code 
with a first check volatile identification code obtained by applying the first user mask code to 
th e ps e udo - random string in th e third comput e r, id e ntity v e rification taking plac e wh e n th e 
first us e r volatil e id e ntification cod e and th e first ch e ck volatil e id e ntification cod e s ar e 
found to match each other. 

f) causing the third computer to compare the first user volatile identification code 
with a first check volatile identification code obtained by applying the first user mask code to 
the pseudo-random security string in the third computer, wherein the identity of the first user 
is verified when the first user volatile identification code and the first check volatile 
identification codes are found to match each other. 

iii) the first computer is adapted to wrap or encrypt the data file within an executable file 
adapted to unwrap or decrypt the data file only upon activation by a unique key code, and to 
transmit the executable file containing the wrapped or encrypted data file directly to the second 
computer together with first user identification information and the file name of the data file; 

iv) the first computer is adapted to transmit the file name of the data file from the first 
computer to the third computer, together with first user identification information and the unique 
key code; 

v) the second computer is adapted, upon after receipt of the executable file containing the 
wrapped or encrypted data file and upon attempted access thereto by the second user, to establish 
a communications link with the third computer; 
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vi) the second and third computers are adapted to verify an identity of the second user to 
the third computer by way of verification communications between the second computer and the 
third computer; 

vii) the second computer is adapted, upon after successful verification of the identity of 
the second user, to transmit the file name of the data file from the second computer to the third 
computer with a request for the unique key code; and 

viii) the third computer is adapted to transmit the unique key code from the third 
computer to the second computer so as to cause the executable file to unwrap or decrypt the data 
file and to allow access thereto in the second computer by the second user. 

18. (Canceled) 

19. (Previously Presented) A system as claimed in claim 17, adapted such that the 
identity of the second user is verified in step vi) above by way of the second user applying a 
second user mask code to a first_pseudo-random security string in the second computer so as to 
generate a second user volatile identification code, the second user transmitting the second user 
volatile identification code to the third computer and the third computer comparing the second 
user volatile identification code with a second check volatile identification code obtained by 
applying the second user mask code to a second pseudo-random string in the third computer, 
identity verification taking place when the second user volatile identification code and the 
second check volatile identification codes are found to match each other. 

20. (Previously Presented) A system as claimed in claim 19, adapted such that the first 
pseudo-random security string and the second pseudo-random security string are the same. 

21. (Original) A system as claimed in claim 20, adapted such that the pseudo-random 
string is generated by the third computer and transmitted firstly to the first computer and then 
from the first computer to the second computer. 

22. (Original) A system as claimed in claim 20, adapted such that the pseudo-random 
string is generated by the third computer and transmitted firstly to the first computer and then 
from the third computer to the second computer. 
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23. (Previously Presented) A system as claimed in claim 19, adapted such that the first 
pseudo-random security string and the second pseudo-random security string are different. 

24. (Original) A system as claimed in claim 17, adapted such that the identity of the 
first or second user is verified, respectively, through said first or second computer by way of a 
secure user code entry interface for entry of a user mask code by way of the computer and a 
display; wherein: i) said secure user code entry interface contains at least one active display for 
entry of at least one digit of said user mask code by the user; wherein said active display is 
adapted to illuminate or highlight at least one display digit within said active display and said 
interface is adapted to allow said user to enter said at least one digit of said user mask code by a 
response through an input device at a response time when said at least one display digit which 
corresponds with said at least one digit of said user mask code is illuminated or highlighted in 
said active display; and ii) a random run on time is added to said response time to extend said at 
least one active display. 

25. (Previously Presented) A system as claimed in claim 17, wherein: i) the pseudo¬ 
random string comprises a first linear array of characters, each character having a given 
numerical position in the first array (first, second, third etc.); ii) the mask code comprises a 
second linear array of numbers, each number having a given numerical position in the second 
array (first, second, third etc.); and iii) the volatile identification code is generated by applying 
the mask code to the pseudo-random string so as sequentially to select numerical positions in the 
first array on the basis of the numbers in the second array, taken in positional order, and to return 
the characters thereby selected from the first array in sequence so as to form a third linear array, 
this third linear array forming the volatile identification code. 

26. (Original) A system as claimed in claim 17, wherein the third computer is adapted 
to maintain a record of transactions between the first, second and third computers so as to permit 
an audit trail to be established. 

27. (Previously Presented) A system as claimed in claim 17, wherein the third 
computer is adapted to store said first and/or second user volatile identification codes as digital 
signatures in combination with the associated pseudo-random security string. 
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